In April and May 2011 the Prevenity team performed a security audit of identity and access management system for one of the leading Polish banks.

The audit included security level verification of one of the key system in the Bank. As a part of the audit the following activities were performed:

• Penetration test of web application and Web Service;
• Analysis of servers' configuration;
• Compliance verification with law regarding the protection of personal data;
• Verification of processes, procedures and system’s documentation.